Backdoors are getting a custom fit for the network edge. Hackers are modifying open-source tools like J-Magic and TINYSHELL into stealthy implants tailored for network infrastructure. PJobRAT has reappeared - this time in Taiwan, disguised as chat applications. In other news, Morphing Meerkat is making phishing look like a DNS feature. This new PhaaS platform exploits DNS MX records to deliver convincing login pages for over 100 global brands. Here are the top 10 highlights from the past 24 hours.
01
Hackers are targeting networking devices, such as Juniper routers, with backdoors like J-Magic and TINYSHELL being customized from open-source software for attacks on telecommunications carriers and ISPs.
02
The Android malware, PJobRAT, known for targeting Indian military personnel, has now been linked to a campaign aimed at users in Taiwan, disguised as chat apps.
03
Several cryptocurrency packages on the npm registry have been hijacked to steal sensitive information. The affected packages, which have been on npmjs[.]com for up to 9 years, were found to contain obfuscated scripts in their latest versions.
04
A malicious campaign has been found using SnakeKeylogger that spreads through malicious spam emails with .img attachments, which, when opened, execute a multi-stage infection chain.
05
A Pakistan-based APT group, APT36, created a fake IndiaPost website to target both Windows and Android users, employing ClickFix to potentially compromise systems.
06
A new PhaaS platform, tracked as Morphing Meerkat, is using DNS mail exchange records to serve fake login pages that impersonate about 114 brands.
07
Firefox has patched a critical vulnerability (CVE-2025-2857) that is similar to a recently disclosed Chrome zero-day exploit (CVE-2025-2783), which was used in attacks aimed at Russian organizations.
08
Disney's latest Snow White movie has been exploited by scammers who offer pirated versions of the film, tricking torrent users into downloading malware.
09
Cybersecurity company GetReal Security raised $17.5 million in a Series A funding round led by Forgepoint Capital, with participation from Ballistic Ventures, Evolution Equity, and others.
10
AI-powered customer security platform Charm Security raised $8 million in a seed funding round led by Team 8’s Venture Creation Fund.
